ASRC Federal is looking for an experienced IA Policy and Compliance Certified Professional - Senior to support their work with the U.S. Army Contracting Command (ACC) Chief Information Officer (CIO) G6 at Redstone Arsenal, AL. The Senior IA Professional serves as a subject matter expert (SME) and technical leader within the ACC Headquarters (HQ) Cybersecurity Division (CSD). This position is responsible for the development, implementation, and maintenance of cybersecurity policies, standards, and procedures, ensuring compliance with applicable Department of Defense (DoD), Army, and ACC regulations.
The Senior IA Professional will lead a team of intermediate-level personnel, providing guidance and oversight in all aspects of Risk Management Framework (RMF) activities, cybersecurity assessments, and incident response. This role requires a deep understanding of cybersecurity principles, a strong analytical ability, and excellent communication skills to effectively convey complex information to both technical and non-technical audiences.
KEY RESPONSIBILITIES- Establish, maintain, and retain the Command Cybersecurity Standard Operating Procedures (SOPs) and Tactics, Techniques, and Procedures (TTPs).
- Develop and maintain an ACC CIO/G6 Cybersecurity portal for dissemination of key products and documentation.
- Lead and oversee the Risk Management Framework (RMF) lifecycle for multiple systems. Work with the Intermediate IA Professionals to maintain current Authority to Operate (ATO) status for these systems and provide RMF guidance and support to other ACC locations with similar systems.
- Ensure all Military, Government, and Contractor IT/Cybersecurity personnel maintain records of training and certifications in the approved repository. Administer and maintain the repository, tracking requirements and notifying users of deficiencies.
- Provide executive monthly briefings and reports to Senior Level Government Representatives on cybersecurity status and performance metrics (e.g., Cyber Scorecard). Report all deficiencies to the Government on a weekly basis.
- Provide plans, strategies, and analysis to support the ACC CIO/G6 Cybersecurity Official with strategic program development. Utilize assessment tools to determine current cybersecurity posture, identify risks, and develop actionable strategies. Align cybersecurity priorities with Army and ACC strategic plans.
- Identify, investigate, research, analyze, and report on Cyber-related capabilities and technologies to meet current and emerging command needs. Assess and report on technology solutions for potential integration into the DoDIN or command enclaves.
- Conduct research to increase Cyber awareness and protection. Assess the feasibility of emerging ideas and participate in service, joint, and interagency events. Identify emerging Cyber trends and prepare vision documents and strategic studies.
- Complete, track, and report completion of Cybersecurity taskers to the responsible HQ ACC Division Chief.
- Provide plans, strategies, and analysis to support implementation of privacy standards (AR 340-21) and strategic development of Privacy training and policies. Support the ACC CIO/G6 Privacy Official with program support, incident handling, and reporting.
- Attend and participate in Cyber-related working groups, meetings, and briefings as directed by the Government and maintain the Cyber Division calendar.
REQUIRED QUALIFICATIONS- Minimum of 5 years of experience in cybersecurity, with a focus on policy review, RMF implementation, and compliance. Demonstrated experience leading and mentoring junior staff.
- Proficient in:
- DoD and Army cybersecurity regulations and policies.
- The Risk Management Framework (RMF) process.
- Strong analytical and problem-solving skills.
- Proficiency in using cybersecurity tools and technologies (eMASS).
- Strong written and verbal communication skills, including the ability to prepare and deliver briefings to senior leadership.
CLEARANCE LEVELEDUCATION REQUIRMENTS- Bachelor's degree in information technology, Cybersecurity, Data Science, Information Systems, or Computer Science from an ABET-accredited or CAE-designated institution
CERTIFICATION- One of the following required: CISM, CISSO, FITSP-M, GCIA, GCSA, GCIH, GSLC, GICSP, CISSP-ISSMP, or CISSP
WORK ENVIRONMENT AND PHYSICAL DEMANDS:- This role is 100% on-site at Redstone Arsenal, AL.
- Data Management: Applications will be reviewed in intervals. The first 10 candidates will be considered, followed by subsequent groups of 10.
We invest in the lives of our employees, both in and out of the workplace, by providing competitive pay and benefits packages. Benefits offered may include health care, dental, vision, life insurance; 401(k); education assistance; paid time off including PTO, holidays, and any other paid leave required by law. The salary offered will depend on several factors including, but not limited to, relevant experience, skills, education, geographic location, internal equity, business needs, and other factors permitted by law. Posted pay ranges are a general guideline only and are not a guarantee of compensation or salary.